"Jack" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > Hi, > Mr. Barker, > > Thank you for your response. Your message is valuable. > >> No we don't. It's a new connection from Tomcat's point of view, totally >> indisigushable from any other new connection. > Yes. You are right, > > For most browsers, do you have an idea about what is going to happen for > this? >
They will (hopefully) close the connection to port 80, and open a new connection to port 443. > After a request & response, on the keep alive connection. > The web server starts to negotiate an SSL support by sending a Hello > request. > It won't, since it has no reason to renegotiate. > If web browsers can process it correctly, then in such cases, it is > possible to use the web-app certificate. > Mr. Barker mentioned: >>...., but practically no browser supports the protocol extension that >>allows this, so it's currently not worth the effort of trying to support >>it. > Do you mean web browsers will just ignore the received Hello request? > No, simply that practically no browser supports RFC2817 http://www.ietf.org/rfc/rfc2817.txt. > At present, RealmBase.hasUserDataPermission just redirect the request to > https port. > It doesn't do it in the way mentioned above. > Pretty much the only thing it can do. The SSL port will be different than the normal HTTP port. > I am looking forward to your opinion. Thanks. > > [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
